AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems — LLM frameworks, ML libraries, AI agents, vector databases, and inference servers. Vulnerabilities are tracked from NVD, GitHub Advisory, CISA KEV, MITRE ATLAS, and enriched with CVSS, EPSS, exploitation confidence, AI-component classification, and compliance mappings to ISO 42001, EU AI Act, NIST AI RMF, and OWASP LLM Top 10. Updated continuously as new CVEs are published.
- CVSS severity
- EPSS exploit probability
- Exploitation confidence
- AI-component classification
- Compliance mappings
AI/ML CVEs Tracked
Critical
New This Week
In CISA KEV
Latest AI Security Threats
Showing 20 of 826 results — has patch CVE-2026-34511 OpenClaw: PKCE verifier leak enables OAuth token theft — 0.2% openclaw Apr 4 HIGH E CVE-2026-35394 mobile-mcp: intent injection enables device control via AI agent 8.3 0.4% @mobilenext/mobile-mcp Apr 4 HIGH E CVE-2026-35044 BentoML: malicious bento archive RCE via Jinja2 SSTI 8.8 0.4% bentoml Apr 3 HIGH E CVE-2026-35043 BentoML: cmd injection RCE on cloud build infra 7.8 0.3% bentoml Apr 3 CRIT CVE-2026-35030 LiteLLM: auth bypass via JWT cache key collision 9.1 0.4% litellm Apr 3 UNKN E CVE-2026-35029 LiteLLM: auth bypass allows RCE and full takeover — 27.2% litellm Apr 3 MEDI CVE-2026-34755 vLLM: OOM DoS via unbounded video frame decoding 6.5 0.3% vllm Apr 3 MEDI CVE-2026-34753 vLLM: SSRF in batch API exposes cloud metadata endpoints 5.4 0.2% vllm Apr 3 MEDI CVE-2026-34052 ltiauthenticator: OAuth nonce leak causes server DoS 5.9 0.3% jupyterhub-ltiauthenticator Apr 3 MEDI CVE-2026-33709 JupyterHub: open redirect enables post-login phishing — 0.2% jupyterhub Apr 3 MEDI CVE-2026-34756 vLLM: DoS via unbounded n parameter causes OOM crash 6.5 0.3% vllm Apr 3 MEDI GHSA-9q7v-8mr7-g23p OpenClaw: SSRF in marketplace fetch hits internal AI infra — — openclaw Apr 2 HIGH GHSA-q56x-g2fj-4rj6 onnx: TOCTOU symlink following enables arbitrary file write 7.1 — onnx Apr 1 HIGH E CVE-2026-34954 praisonaiagents: SSRF leaks cloud IAM credentials 8.6 0.4% praisonaiagents Apr 1 HIGH E CVE-2026-34955 PraisonAI: sandbox escape via shell=True blocklist bypass 8.8 0.4% praisonai Apr 1 HIGH E CVE-2026-34936 PraisonAI: SSRF via api_base steals cloud IAM credentials 7.7 0.3% praisonai Apr 1 HIGH E CVE-2026-34937 PraisonAI: OS command injection via run_python() shell escape 7.8 0.5% praisonaiagents Apr 1 CRIT E CVE-2026-34938 praisonaiagents: sandbox bypass enables full host RCE 10.0 0.7% praisonaiagents Apr 1 HIGH E CVE-2026-34222 Open WebUI: access control bypass leaks Tool Valve API keys 7.7 5.3% open-webui Apr 1 MEDI E CVE-2026-34447 ONNX: symlink traversal reads host files via model loading 5.5 0.2% onnx Apr 1 Frequently asked questions
What is an AI security threat feed?
An AI security threat feed is a continuously updated stream of vulnerabilities (CVEs) affecting AI and machine-learning systems — LLM frameworks, ML libraries, AI agents, vector databases, and inference servers — filtered out of the broader CVE firehose and enriched for relevance.
Which sources are the AI CVEs tracked from?
CVEs are tracked from NVD, GitHub Advisory, CISA KEV, and MITRE ATLAS, then enriched with CVSS, EPSS, exploitation confidence, AI-component classification, and compliance mappings.
What AI systems do these vulnerabilities affect?
Coverage spans LLM frameworks, ML libraries, AI agents, vector databases, and inference servers — the components most security teams now run in production.
How often is the AI threat feed updated?
The feed updates continuously as new CVEs are published and enriched, so the most recent AI/ML vulnerabilities appear at the top.
Is the AI security feed free?
Yes — the public feed is free to browse. A Pro subscription adds breaking alerts, MITRE ATLAS mappings, compliance reports (ISO 42001, EU AI Act), and full CISO analysis.
Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial